Download
| Alert*
oval:org.secpod.oval:def:60791
python-ecdsa: ECDSA cryptographic signature library Several security issues were fixed in python-ecdsa. oval:org.secpod.oval:def:61477 It was discovered that python-ecdsa, a cryptographic signature library for Python, incorrectly handled certain signatures. A remote attacker could use this issue to cause python-ecdsa to either not warn about incorrect signatures, or generate exceptions resulting in a denial-of-service. oval:org.secpod.oval:def:1601757 An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature decoding, malformed DER signatures could raise unexpected exceptions , which could lead to a denial of service. A flaw was found in all python-ecdsa versions before 0.13.3, where it did not correctly verify whet ... oval:org.secpod.oval:def:89050667 This update for python-ecdsa to version 0.13.3 fixes the following issues: Security issues fixed: - CVE-2019-14853: Fixed unexpected exceptions during signature decoding . - CVE-2019-14859: Fixed a signature malleability caused by insufficient checks of DER encoding . oval:org.secpod.oval:def:69928 It was discovered that python-ecdsa, a cryptographic signature library for Python, incorrectly handled certain signatures. A remote attacker could use this issue to cause python-ecdsa to either not warn about incorrect signatures, or generate exceptions resulting in a denial-of-service. oval:org.secpod.oval:def:705286 python-ecdsa: ECDSA cryptographic signature library Several security issues were fixed in python-ecdsa. oval:org.secpod.oval:def:604651 It was discovered that python-ecdsa, a cryptographic signature library for Python, incorrectly handled certain signatures. A remote attacker could use this issue to cause python-ecdsa to either not warn about incorrect signatures, or generate exceptions resulting in a denial-of-service. |